[ovs-dev] [PATCH v2 1/2] ovn: Support port groups in ACLs

Ben Pfaff blp at ovn.org
Fri Apr 13 19:50:24 UTC 2018


On Wed, Apr 04, 2018 at 05:51:47PM -0700, Han Zhou wrote:
> This patch enables using port group names in ACL match conditions.
> Users can create a port group in northbound DB Port_Group table,
> and then use the name of the port group in ACL match conditions
> for "inport" or "outport". It can help reduce the number of ACLs
> for CMS clients such as OpenStack Neutron, for the use cases
> where a group of logical ports share same ACL rules except the
> "inport"/"outport" part. Without this patch, the clients have to
> create N (N = number of lports) ACLs, and this patch helps achieve
> the same goal with only one ACL. E.g.:

Thanks Han and others.  I applied this to master.


More information about the dev mailing list